{"id":9587,"date":"2022-11-04T05:43:51","date_gmt":"2022-11-04T05:43:51","guid":{"rendered":"https:\/\/conference.hitb.org\/hitbsecconf2023ams\/product\/bootpwn-breaking-secure-boot-by-experience-hitb2023ams\/"},"modified":"2023-04-18T06:26:02","modified_gmt":"2023-04-18T06:26:02","slug":"bootpwn-breaking-secure-boot-by-experience-hitb2023ams","status":"publish","type":"product","link":"https:\/\/conference.hitb.org\/hitbsecconf2023ams\/product\/bootpwn-breaking-secure-boot-by-experience-hitb2023ams\/","title":{"rendered":"BootPwn: Breaking Secure Boot by Experience"},"content":{"rendered":"
\n
\n
\n

 <\/p>\n

\n
\n
\n
This 4-day BOOTPwn course is one of two Raelize’s Pwn training courses. The other is TEEPwn which will be conducted in Phuket, Thailand\u00a0 on August 2023. To find out more about this August’s 4-day TEEPwn course, click here.<\/strong><\/a><\/em><\/span><\/h5>\n
\n
\n<\/div>\n<\/div>\n<\/div>\n
\n
\n
\n

REGISTRATION CLOSED<\/span><\/strong><\/h2>\n

DATE: 17-20 April 2023<\/strong><\/h4>\n<\/div>\n

TIME: 09:00 to 17:00 CEST\/GMT+2<\/strong><\/h4>\n\n\n\n\n\n\n\n
Date<\/strong><\/td>\nDay<\/strong><\/td>\nTime<\/strong><\/td>\nDuration<\/strong><\/td>\n<\/tr>\n
17 Apr<\/td>\nMonday<\/td>\n09:00 to 17:00 CEST\/GMT+2<\/td>\n8 Hours \u2013 Presentations & Hands-on exercises<\/td>\n<\/tr>\n
18 Apr<\/td>\nTuesday<\/td>\n09:00 to 17:00 CEST\/GMT+2<\/td>\n8 Hours \u2013 Presentations & Hands-on exercises<\/td>\n<\/tr>\n
19 Apr<\/td>\nWednesday<\/td>\n09:00 to 17:00 CEST\/GMT+2<\/td>\n8 Hours \u2013 Presentations & Hands-on exercises<\/td>\n<\/tr>\n
20 Apr<\/td>\nThursday<\/td>\n09:00 to 17:00 CEST\/GMT+2<\/td>\n8 Hours \u2013 Presentations & Hands-on exercises<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n
\n

 <\/p>\n

Secure Boot is fundamental for assuring the authenticity of the Trusted Code Base (TCB) of embedded devices. Recent attacks on Secure Boot, on a wide variety of devices such as video game consoles and mobile phones, indicate that Secure Boot vulnerabilities are widespread.<\/strong><\/p>\n

The BootPwn experience puts you in the attacker’s seat in order to explore the attack surface of Secure Boot <\/strong>while identifying and exploiting interesting vulnerabilities applicable to real-world devices. Moreover, it\u2019s hands-on, well-guided and driven by an exciting jeopardy-style format.<\/p>\n

Your journey starts with achieving a comprehensive understanding of Secure Boot<\/strong>. You will learn how hardware and software are used to assure the integrity and confidentiality of the software of an embedded device. You will then use this understanding for identifying interesting vulnerabilities across the entire Secure Boot<\/strong> attack surface. You will be challenged to exploit these vulnerabilities using multiple realistic scenarios.<\/p>\n

All practical exercises are performed on our custom emulated attack platform which is based on publicly available code bases.<\/p>\n

As an attacker, you will be able to:<\/p>\n